Should you not add an additional server block like this to force http to https?:
server {
listen 80;
server_name mysite.com www.mysite.com;
return 301 https://$server_name$request_uri;
}And also add something like this in your current server block?:
# This forces every request after this one to be over HTTPS
add_header Strict-Transport-Security "max-age=31536000";